News:

SMF 2.1.4 has been released! Take it for a spin! Read more.

Main Menu

Recent posts

#21
SMF 2.0.x Support / Re: Http 500 code, moved serve...
Last post by Kindred - September 25, 2023, 08:12:00 PM
There are no database changes in 2.0.x

Even if you upgraded to 2.1.x (which is recommended), the upgrade process converts the database to the needed formats
#22
SMF 2.1.x Support / Re: Error message: Unable to v...
Last post by Kindred - September 25, 2023, 08:10:27 PM
What is your url setting for your forum?
What url are you using to access the forum?

Please include the ACTUAL url
#23
SMF 2.1.x Support / Re: Cannot read/reply to priva...
Last post by Kindred - September 25, 2023, 08:05:50 PM
Or have the host figure out what part of mod_security is misconfigured and fix it
#24
Theme Previews / Re: [Preview][SMF 2.1] GreyedO...
Last post by Steve - September 25, 2023, 07:23:12 PM
Woot!
#25
SMF 2.1.x Support / Re: Cannot post any attachment...
Last post by Steve - September 25, 2023, 07:16:33 PM
Do you know which one caused it? Or was it a custom one?
#26
SMF 2.1.x Support / Re: Top bar Control interactio...
Last post by stoo23 - September 25, 2023, 07:11:09 PM
QuoteThe user is at https://www.masm32.com, but your forum's canonical domain is https://masm32.com and therefore the AJAX requests are being sent to the latter.

Yes, I noticed that and had mean't to mention it both here and to the Member.

QuoteThe solution would be to use an .htaccess file to redirect browsers from https://www.masm32.com to https://masm32.com. Then anyone initially trying to go to the www subdomain will be automatically redirected to the main domain, and all further interactions with the server will take place on the main domain without any cross-origin requests happening.

Yes, understood.
I thought we had Already deal't with and accommodated that around the time we re-configured the Server and upgraded the SMF software to the latest version,.. I will have to check.

We had a few issues wih some users with addresses being stored locally but invariably clearing Cookies and Cache's seemed to fix that.
All appears to have been fine of late, so was somewhat surprised by this member reporting the error, Now !!

Thanks for the input and suggestions etc  ;)
cheers,
Stewart  :)

#27
SMF 2.1.x Support / Re: Cannot read/reply to priva...
Last post by Illori - September 25, 2023, 07:04:51 PM
then find another host.
#28
SMF 2.1.x Support / Re: Top bar Control interactio...
Last post by Sesquipedalian - September 25, 2023, 07:00:14 PM
The answer is in the first line of that error message. The user is at https://www.masm32.com, but your forum's canonical domain is https://masm32.com and therefore the AJAX requests are being sent to the latter.

Because those are not the same domain, this counts as a "cross-origin" request. Cross-origin requests trigger a bunch of security measures that you probably don't care about the details of, but the upshot is that sometimes such requests will be denied.

The solution would be to use an .htaccess file to redirect browsers from https://www.masm32.com to https://masm32.com. Then anyone initially trying to go to the www subdomain will be automatically redirected to the main domain, and all further interactions with the server will take place on the main domain without any cross-origin requests happening.
#29
SMF 2.1.x Support / Re: Cannot read/reply to priva...
Last post by 808server - September 25, 2023, 06:03:05 PM
They told me that if I removed mod_security, I would have to install Cloudflare since the forum is being attacked by bots from China. Is there no other alternative?
Do I need another service provider? I am tried of dealing with all of this stuff. I just want the forum to run.
#30
SMF 2.1.x Support / Re: Top bar Control interactio...
Last post by stoo23 - September 25, 2023, 05:47:35 PM
Further from my User:

QuoteI'm getting this error on the JS console:

Access to XMLHttpRequest at 'https://masm32.com/board/index.php?action=profile;area=alerts_popup;counter=3;u=24' from origin 'https://www.masm32.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.
jquery.min.js:2    GET https://masm32.com/board/index.php?action=profile;area=alerts_popup;counter=3;u=24 net::ERR_FAILED 302
send @ jquery.min.js:2
ajax @ jquery.min.js:2
E.<computed> @ jquery.min.js:2
updateAlerts @ minified_8c5c3c63fe705521109cd0609542d3cc.js?smf214_1694438488:607
setTimeout (async)
updateAlerts @ minified_8c5c3c63fe705521109cd0609542d3cc.js?smf214_1694438488:619


Could this perhaps be related to 'cookies' stored previously on the Users Machine ?? or using the older incorrect address ??

Advertisement: